Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nginx/nginx@1.25.3

Type nginx

Namespace

Name nginx

Version 1.25.3

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.25.4

Latest_non_vulnerable_version 1.31.1

Affected_by_vulnerabilities

url VCID-b8yz-dv3g-8ugj

vulnerability_id VCID-b8yz-dv3g-8ugj

summary NULL pointer dereference in HTTP/3

references

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-24989
reference_id	CVE-2024-24989
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-24989

fixed_packages

url	pkg:nginx/nginx@1.25.4
purl	pkg:nginx/nginx@1.25.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.25.4

aliases CVE-2024-24989

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8yz-dv3g-8ugj

url VCID-m1sc-j1gn-xfaf

vulnerability_id VCID-m1sc-j1gn-xfaf

summary Use-after-free in HTTP/3

references

reference_url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-announce/2024/NW6MNW34VZ6HDIHH5YFBIJYZJN7FGNAV.html

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-24990
reference_id	CVE-2024-24990
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-24990

fixed_packages

url	pkg:nginx/nginx@1.25.4
purl	pkg:nginx/nginx@1.25.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.25.4

aliases CVE-2024-24990

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m1sc-j1gn-xfaf

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:nginx/nginx@1.25.3

Package Instance